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Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1.136(a). !n no event, however, may a reply be timely filed 
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earned patent term adjustment. See 37 CFR 1.704(b). 
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Application Papers 
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Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 
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DETAILED ACTION 

1. Claims 1-20 have been examined. 

Claim Rejections - 35 USC §112 

2. The following is a quotation of the second paragraph of 35 U.S.C. 112: 

The specification shall conclude with one or more claims particularly pointing out and distinctly 
claiming the subject matter which the applicant regards as his invention. 

3. Claim 1 1 is rejected under 35 U.S.C. 112, second paragraph, as being indefinite 
for failing to particularly point out and distinctly claim the subject matter which applicant 
regards as the invention. 

• Claim 1 1 recites the limitation "the complete certificate chain" in line 3. 
There is insufficient antecedent basis for this limitation in the claim. The 
limitation is interpreted as "a complete certificate chain" 

• It is not clear how the time that the last data packet of the response is 
used to determine the time of the request was sent. The claim is interpreted as 
"the act of determining the time that the certificate was received includes 
determining the time that the last data packet of a complete certificate chain was 
received" (see Specification, p. 11, lines 10-19). 



Claim Rejections - 35 USC § 103 

4. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 
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(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

5. Claims 1-6, 8, 11-20 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Feghhi et al ("Digital Certificates - Applied Internet Security'') in view of Fletcher et 
al (6,363,477). 

Regarding claims 1 and 6, Feghhi discloses a method comprising: generating a 
request for certificate certification that includes a distinguished name, a public key and 
data that indicates a usage of the public key (Certificate Enrollment, p. 80-81 ; Key 
Certification Request — PKCS #10, p. 181-182); sending the request for certificate 
certification to a computer system (Certificate Enrollment, p. 80-81); receiving a 
certificate from the computer system (Certificate Generation, p. 82; Digital Signature 
Processes — PKCS7.SingedData, p. 182-184); and determining whether the certificate 
contains information that indicates whether the public key may be utilized for the usage 
indicated in the data (Introduction to the LRA Model, p. 234, 4 th paragraph). 

Feghhi does not disclose determining the time that the request was sent, 
determining the time that the response was received and determining the difference 
between the time that the request was sent and the time that the response was 
received. Fletcher discloses a method for obtaining performance statistics of network 
applications comprising determining the time that the request was sent, determining the 
time that the response was received and determining the difference between the time 
that the request was sent and the time that the response was received (figures 5 and 
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10; col. 13, lines 5-18). It would have been obvious to one of ordinary skill in the art at 
the time the invention was made to modify the Feghhi method to include the steps of 
determining the time that the request was sent, determining the time that the response 
was received and determining the difference between the time that the request was sent 
and the time that the response was received, as taught by Fletcher. The motivation for 
doing so would have been to provide an accurate measure of the performance and 
reliability of the network (col. 18, line 57 - col. 19, lines 12). 

Regarding claim 16, Feghhi also discloses generating and processing a plurality 
of requests for certificate certification (Outsourcing Key Management Services, p. 233; 
LRA Queues Requests, p. 237; Automated Processing, p. 237). 

Regarding claims 2 and 17, Feghhi further discloses that the request includes an 
object identifier (Key Certification Request— PKCS #10, p. 181-182). 

Regarding claims 3 and 18, Feghhi further discloses that the public key is owned 
by the entity that owns the distinguished name (Key Certification Request— PKCS #10, 
p. 181-182). 

Regarding claims 4 and 19, Feghhi further discloses that the public key is not 
owned by the entity that owns the distinguished name (Certificate Enrollment, p. 80, 1 st 
paragraph). 

Regarding claims 5 and 20, Feghhi further discloses digitally signing the 
distinguished name and the public key (Key Certification Request— PKCS #10, p. 181- 
182). 
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Regarding claim 8, Feghhi further discloses sending the request for certificate 
certification to a certificate authority (Certificate Enrollment, p. 80, 1 st paragraph). 

Regarding claim 11, Feghhi further discloses receiving a certificate chain (Key 
Certification Request— PKCS #10, p. 181, 2 nd paragrahp; Digital Signature Processes— 
PKCS7.SingedData, p. 184, 1 st paragraph). Fletcher further discloses that determining 
the time that the response was received includes applying a time-stamp to each 
response packet (col. 9, lines 55-61 ; col. 10, lines 42-57). 

Regarding claim 12, Feghhi further discloses that the certificate is compliant with 
a version of the X.509 standard (Key Certification Request— PKCS #10, p. 181-182). 

Regarding claim 13, Feghhi further discloses that the certificate is compliant with 
version 3 of the X.509 standard (Figure 3-2, p. 67). 

Regarding claim 14-15, Feghhi further discloses determining whether an X.509 
key usage extension may be utilized for the usage indicated in the data (X.509 
Extension Fields, p. 68-69; Key Certification Request— PKCS #10, p. 182, 4 th 
paragraph; Introduction to the LRA Model, p. 234, 4 th paragraph). 

6. Claims 7 and 9 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Feghhi in view of Fletcher as applied to claim 1 above, and further in view of Hughes 
("White Paper - Certificate Inter-operability"). Feghhi does not disclose that the request 
for certificate certification is complied with the PKCS #7. Hughes discloses sending a 
request for certificate certification that is complied with the PKCS #7 (Distributed 
Generation, p. 10). It would have been obvious to one of ordinary skill in the art at the 
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time the invention was made to modify the combined method of Feghhi and Fletcher 
such that the request for certificate certification is complied with the PKCS #7, as taught 
by Hughes. The motivation for doing so would have been that only the CA could 
decrypt the PKCS #7 message and extract the certificate request. 

7. Claim 10 is rejected under 35 U.S.C. 103(a) as being unpatentable over Feghhi 
in view of Fletcher as applied to claim 1 above, and further in view of Sites 6,728,880). 
Feghhi does not disclose accessing a third computer system that contains a time 
reference. Sites discloses accessing a third computer system that contains a time 
reference (col. 1, lines 9-21). It would have been obvious to one of ordinary skill in the 
art at the time the invention was made to modify the combined method of Feghhi and 
Fletcher to access a third computer system that contains a time reference, as taught by 
Hughes. The motivation for doing so would have been to obtain a trusted time that was 
not subjected to user manipulation and could be relied upon. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Minh Dinh whose telephone number is 571-272-3802. 
The examiner can normally be reached on Mon-Fri: 10:00am-6:30pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron can be reached on 571-272-3799. The fax phone number 
for the organization where this application or proceeding is assigned is 703-872-9306. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-21 7-91 97 (toll-free). 
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